Variant of win32/Kryptic.PQP Back Door Trojan Virus

Started by djthedj, July 04, 2011, 05:47:26 PM

Previous topic - Next topic

0 Members and 1 Guest are viewing this topic.

Print
Go Down Pages 1 2 3
User actions

Corrine

#30
July 07, 2011, 10:15:26 PM
No, I didn't want the quarantined files log.  If there is no ComboFix.txt with the date that you ran the last script, please just check for the folder c:\program files\Enigma Software Group and if found, delete it.  The other items were merely cleaning up non-essentials.

Please do the following to implement cleanup procedures and also to reset System Restore points:

Click Start > Run and copy/paste the following bolded text into the Run box and click OK:

ComboFix /Uninstall

Note: In the event you wish to contribute to the ongoing development of ComboFix, the developer is accepting donations via PayPal.


With all of the leftover Java removed, you should now be able to update to the latest version.  Please do pay attention to the information provided at Which Java download should I choose for my 64-bit Windows operating system? including the steps to verify whether you are using a 32-bit or 64-bit browser.  (Although I have a 64-bit system, I am using the 32-bit browser.)







Take a walk through the "Security Garden" -- Where Everything is Coming up Roses!

Remember - A day without laughter is a day wasted.
May the wind sing to you and the sun rise in your heart.

djthedj

#31
July 08, 2011, 12:38:51 AM
Corrine:

Combofix is now unistalled. I also down loaded the 32 bit Java update and installed it. The Enigma Software Group
was an empty folder which I previously deleted.

djthedj

Corrine

#32
July 08, 2011, 02:42:19 AM
Excellent!  I'm glad you were finally able to get the updated Java installed. 

Please let me know if you have any questions.


Take a walk through the "Security Garden" -- Where Everything is Coming up Roses!

Remember - A day without laughter is a day wasted.
May the wind sing to you and the sun rise in your heart.

djthedj

#33
July 08, 2011, 03:38:23 AM
Corrine:

My major question is how or what do I need to do to clean off my desk top - MBAM, malwarebytes anti malware, unhide, jre-6u26-windows-x64, jre-6u26-windows-i586-s, RSITx64, SecurityCheck, JavaRa plus all the log files?
Also would it be advantages for me to leave the malwarebytes anti malware on my computer for added security?
What can you tell me about a program called SUPERAntiSpyware?

Thank you very much for all your help and your time.

djthedj

Corrine

#34
July 08, 2011, 02:08:48 PM
Hi, djthedj.

You are very welcome.

To remove the no longer needed logs and installers from your desktop, right-click and select delete.  With ESET NOD32, you have an excellent anti-virus program.  In addition, the Windows 7 firewall plays very nicely with Windows 7.  As to anti-malware programs, Malwarebytes Anti-Malware (MBAM) is an excellent choice.  SUPERAntiSpyware is another anti-malware program.  I have not used it myself but know that many people like it. 


Take a walk through the "Security Garden" -- Where Everything is Coming up Roses!

Remember - A day without laughter is a day wasted.
May the wind sing to you and the sun rise in your heart.
Print
Go Up Pages 1 2 3
User actions